Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/48a9eb-18db-4f92-9580-272dab5afa66/1/BEp3_sH59VOr6uOX_sk85hXj7vk.roa
File: BEp3_sH59VOr6uOX_sk85hXj7vk.roa (raw, json)
Hash identifier: WVWEIO4zvkX4rKYHvknvZjoqBIkIvCqakm1xDuNDJI4=
Subject key identifier: 04:4A:77:FE:C1:F9:F5:53:AB:EA:E3:97:FE:C9:3C:E6:15:E3:EE:F9
Certificate issuer: /CN=49ea50a1c62082762afda007d6fc8b4bdb05749f
Certificate serial: 06ACCC93
Authority key identifier: 49:EA:50:A1:C6:20:82:76:2A:FD:A0:07:D6:FC:8B:4B:DB:05:74:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SepQocYggnYq_aAH1vyLS9sFdJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/48a9eb-18db-4f92-9580-272dab5afa66/1/BEp3_sH59VOr6uOX_sk85hXj7vk.roa
Signing time: Sat 01 Jan 2022 06:01:16 +0000
ROA not before: Sat 01 Jan 2022 06:01:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207796
IP address blocks: 194.50.204.0/24 maxlen: 24
194.50.209.0/24 maxlen: 24
194.50.218.0/24 maxlen: 24
194.50.216.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111987859 (0x6accc93)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49ea50a1c62082762afda007d6fc8b4bdb05749f
Validity
Not Before: Jan 1 06:01:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=044a77fec1f9f553abeae397fec93ce615e3eef9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:c4:a9:52:0e:01:0d:fa:f4:a9:e8:8f:50:63:
7b:22:89:35:a9:4d:ee:4c:37:96:6c:a8:84:15:3f:
7b:60:b8:3c:93:76:6b:5d:c8:9c:47:7c:f1:de:a5:
94:09:17:d8:1c:b5:6f:f8:b6:70:1e:30:0b:0b:49:
bd:3d:e7:4e:0c:7d:74:ca:c3:56:da:ac:86:03:b3:
c1:ec:1e:60:0a:f9:65:7a:ef:7f:87:36:25:87:d9:
bb:cd:11:6d:db:02:e4:10:bb:da:c8:a1:09:28:ba:
cc:eb:19:73:af:6a:11:88:32:cd:f5:32:9d:a6:13:
52:83:f8:f0:9c:56:35:2c:bf:79:80:8a:f7:b2:b7:
e1:6f:e9:22:a8:5a:4e:b9:56:13:df:50:34:e8:fb:
63:ae:ad:8f:2e:fe:60:5b:3d:2c:4f:53:6d:ac:2d:
5a:bb:79:4a:04:5d:52:ef:5c:21:9b:d8:1f:44:0a:
9f:c2:07:50:65:74:05:7a:7c:08:cc:bf:5f:4f:46:
49:ca:58:6d:95:fa:fb:75:92:de:f2:94:6c:6e:5a:
8d:be:67:58:35:b4:67:23:ab:10:f9:09:b6:74:09:
db:5d:52:5b:04:20:20:d4:f3:f1:eb:a3:1a:a7:92:
0d:b4:e8:bc:24:65:67:dc:71:d9:dc:16:c8:77:bd:
7e:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:4A:77:FE:C1:F9:F5:53:AB:EA:E3:97:FE:C9:3C:E6:15:E3:EE:F9
X509v3 Authority Key Identifier:
keyid:49:EA:50:A1:C6:20:82:76:2A:FD:A0:07:D6:FC:8B:4B:DB:05:74:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SepQocYggnYq_aAH1vyLS9sFdJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/48a9eb-18db-4f92-9580-272dab5afa66/1/BEp3_sH59VOr6uOX_sk85hXj7vk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/48a9eb-18db-4f92-9580-272dab5afa66/1/SepQocYggnYq_aAH1vyLS9sFdJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.204.0/24
194.50.209.0/24
194.50.216.0/24
194.50.218.0/24
Signature Algorithm: sha256WithRSAEncryption
49:d6:ac:2b:57:fd:f8:94:78:f8:be:96:22:4e:13:d0:0d:43:
ab:4c:de:42:10:e8:23:8f:3b:e7:63:a7:44:c9:b4:e4:a0:b5:
df:5e:95:6a:c7:77:16:2f:eb:0a:b7:3d:cc:8f:9f:57:05:64:
62:e0:86:12:11:23:52:bc:cf:7b:6f:50:fc:c4:8b:62:da:e2:
9c:92:b4:72:cd:77:15:77:e1:84:5f:e2:d6:f7:1f:35:9a:6c:
a3:2a:ff:fd:66:b2:69:e0:e1:e6:03:0e:8e:c2:be:a8:95:f6:
33:e7:84:59:79:32:95:42:6d:88:33:74:db:fa:ad:e6:d0:88:
bb:a9:a4:ce:29:b5:c8:15:d2:1a:80:79:8e:a2:de:cf:0f:9e:
5f:43:0f:bd:1a:cd:25:61:68:7e:ca:6f:29:db:83:b9:f7:72:
b5:3d:ac:c8:27:f8:98:7b:50:2b:77:b5:de:8c:9d:e4:99:fc:
1d:b4:18:15:8c:8f:9d:3b:db:c9:fb:e8:21:a7:f9:ac:c6:8e:
59:aa:b2:ca:0c:a0:93:21:2d:4b:8c:06:54:92:a4:07:93:d5:
d8:3c:5b:4c:9d:69:cb:1a:4a:14:f5:93:58:00:f6:2e:1a:54:
46:76:ef:8b:4b:cc:ab:58:93:26:8b:a7:d2:36:ec:b6:9e:bc:
00:e2:98:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:48 2024 by rpki-client on console-fra.rpki-client.org